index
:
openssl
OpenSSL-engine-0_9_6-stable
OpenSSL-fips-0_9_7-stable
OpenSSL-fips-0_9_8-stable
OpenSSL-fips-1_2-stable
OpenSSL-fips-2_0-dev
OpenSSL-fips-2_0-stable
OpenSSL-fips2-0_9_7-stable
OpenSSL_0_9_6-stable
OpenSSL_0_9_7-stable
OpenSSL_0_9_8-stable
OpenSSL_0_9_8fg-stable
OpenSSL_1_0_0-stable
OpenSSL_1_0_1-stable
OpenSSL_1_0_2-stable
OpenSSL_1_1_0-stable
OpenSSL_1_1_1-stable
SSLeay
feature/dtls-1.3
feature/ech
feature/quic-server
master
openssl-3.0
openssl-3.1
openssl-3.2
openssl-3.3
openssl-3.4
tls1.3-draft-18
tls1.3-draft-19
Mirror of https://github.com/openssl/openssl
matthias
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
CHANGES
Age
Commit message (
Expand
)
Author
2012-12-26
Add three Suite B modes to TLS code, supporting RFC6460.
Dr. Stephen Henson
2012-12-26
add suite B chain validation flags and associated verify errors
Dr. Stephen Henson
2012-12-26
Make tls1_check_chain return a set of flags indicating checks passed
Dr. Stephen Henson
2012-12-26
Abort handshake if signature algorithm used not supported by peer.
Dr. Stephen Henson
2012-12-26
check EC tmp key matches preferences
Dr. Stephen Henson
2012-12-26
Add support for certificate stores in CERT structure. This makes it
Dr. Stephen Henson
2012-12-26
New function ssl_set_client_disabled to set masks for any ciphersuites
Dr. Stephen Henson
2012-12-26
Add new ctrl to retrieve client certificate types, print out
Dr. Stephen Henson
2012-12-26
Separate client and server permitted signature algorithm support: by default
Dr. Stephen Henson
2012-12-26
Add certificate callback. If set this is called whenever a certificate
Dr. Stephen Henson
2012-12-26
New functions to retrieve certificate signatures and signature OID NID.
Dr. Stephen Henson
2012-12-26
Add new "valid_flags" field to CERT_PKEY structure which determines what
Dr. Stephen Henson
2012-12-26
Reorganise supported signature algorithm extension processing.
Dr. Stephen Henson
2012-12-26
Add support for application defined signature algorithms for use with
Dr. Stephen Henson
2012-12-26
Make it possible to delete all certificates from an SSL structure.
Dr. Stephen Henson
2012-12-19
Integrate host, email and IP address checks into X509_verify.
Dr. Stephen Henson
2012-12-19
Backport X509 hostname, IP address and email checking code from HEAD.
Dr. Stephen Henson
2012-12-14
Backport OCSP fixes.
Ben Laurie
2012-12-13
Make verify return errors.
Ben Laurie
2012-09-26
add -trusted_first option and verify flag (backport from HEAD)
Dr. Stephen Henson
2012-09-19
MIPS assembly pack: jumbo update from HEAD.
Andy Polyakov
2012-09-11
Minor enhancement to PR#2836 fix. Instead of modifying SSL_get_certificate
Dr. Stephen Henson
2012-09-11
Call OCSP Stapling callback after ciphersuite has been chosen, so the
Ben Laurie
2012-08-29
Add linux-x32 target [from HEAD].
Andy Polyakov
2012-05-29
Missing from previous commit.
Ben Laurie
2012-05-13
Experimental multi-implementation support for FIPS capable OpenSSL.
Dr. Stephen Henson
2012-05-11
PR: 2813
Dr. Stephen Henson
2012-05-11
PR: 2811
Dr. Stephen Henson
2012-05-10
Sanity check record length before skipping explicit IV in TLS 1.2, 1.1 and
Dr. Stephen Henson
2012-05-10
Reported by: Solar Designer of Openwall
Dr. Stephen Henson
2012-04-26
Don't try to use unvalidated composite ciphers in FIPS mode
Dr. Stephen Henson
2012-04-26
CHANGES: clarify.
Andy Polyakov
2012-04-26
CHANGES: fix typos and clarify.
Andy Polyakov
2012-04-25
Change value of SSL_OP_NO_TLSv1_1 to avoid clash with SSL_OP_ALL and
Dr. Stephen Henson
2012-04-25
s23_clnt.c: ensure interoperability by maitaining client "version capability"
Andy Polyakov
2012-04-19
update date
Dr. Stephen Henson
2012-04-19
Check for potentially exploitable overflows in asn1_d2i_read_bio
Dr. Stephen Henson
2012-04-17
Disable SHA-2 ciphersuites in < TLS 1.2 connections.
Bodo Möller
2012-04-17
Additional workaround for PR#2771
Dr. Stephen Henson
2012-04-07
transparently handle X9.42 DH parameters
Dr. Stephen Henson
2012-04-07
Initial experimental support for X9.42 DH parameter format to handle
Dr. Stephen Henson
2012-04-07
Add RFC5114 DH parameters to OpenSSL. Add test data to dhtest.
Dr. Stephen Henson
2012-04-06
Add support for automatic ECDH temporary key parameter selection. When
Dr. Stephen Henson
2012-04-06
Initial revision of ECC extension handling.
Dr. Stephen Henson
2012-04-06
New ctrls to retrieve supported signature algorithms and curves and
Dr. Stephen Henson
2012-04-06
Add new APIs EC_curve_nist2nid and EC_curve_nid2nist which convert
Dr. Stephen Henson
2012-04-06
Add support for distinct certificate chains per key type and per SSL
Dr. Stephen Henson
2012-04-06
Backport DH client certificate support (from HEAD)
Dr. Stephen Henson
2012-04-06
Backport support for fixed DH ciphersuites (from HEAD)
Dr. Stephen Henson
2012-03-31
CHANGES: harmonize with 1.0.0 and 1.0.1.
Andy Polyakov
[next]